Protection
Overview
Monitor pull requests, contributor trust, and incoming GitHub advisories from one place in the dashboard.
Protection gives you a single view of repository risk on GitHub. It is powered by the Superagent Security GitHub App, which handles PR security scanning and contributor trust signals.
Features
| Feature | Dashboard | Purpose |
|---|---|---|
| Pull requests | /app/protection/pull-requests |
Review scans and signals on PR activity |
| Contributor trust | /app/protection/contributor-trust |
Assess contributor risk and history |
| Advisories | /app/protection/advisories |
Triage incoming GitHub security advisories |
Prerequisites
- GitHub connected via Integrations
- Superagent Security installed on the repositories you want to scan
Recommended workflow
- Connect GitHub.
- Install Superagent Security on the repositories you want to protect.
- Review Pull requests for new or high-risk changes.
- Use Contributor trust to investigate unfamiliar or elevated-risk contributors.
- Triage Advisories and link findings back to remediation work.